AppSensor DetectionPoint CIE4

From OWASP
Revision as of 14:14, 4 June 2010 by John Melton (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Here is some sample code that can be used to detect CIE4.

String myInputParameter = ...;

//the execution of this line will create an exception if an attack is found 
boolean isParamSafe = AttackDetectorUtils.verifyCarriageReturnOrLineFeedDoesNotExist(myInputParameter); 
if (! isParamSafe) {
    notify user ... ???
}